On Fri, 2015-06-19 at 15:49 +0200, Nikos Mavrogiannopoulos wrote:
> Hello,
> The attached patch allows loading PKCS #11 URLs in the
> ssl_certificate_key.
The attached patch set enhances that support by allowing PKCS #11 URLs
in the certificate field as well. As it is now nginx can work with
arbitrary hardware security modules using libp11 and engine_pkcs11 from
their git repositories.
That allows both certificate and key directives to be used with PKCS
#11 objects as:
ssl_certificate "pkcs11:model=..."
ssl_certificate_key "pkcs11:model="
(that simplifies loading of certificates which are stored inside the
module).
regards,
Nikos
_______________________________________________
nginx-devel mailing list
nginx-devel@nginx.org
http://mailman.nginx.org/mailman/listinfo/nginx-devel